all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

WordPress Plugin Flaw Let Attackers Hijack 1m Websites

Add to bookmarks
May 12, 2023, 11:36 a.m. | Guru Baran

GBHackers On Security gbhackers.com

The widely-used Elementor plugin, “Essential Addons for Elementor,” has been discovered to have a security flaw that enables unauthorized users to gain administrative control, potentially impacting millions of WordPress websites. PatchStack recently uncovered a critical unauthenticated privilege escalation vulnerability, tracked as CVE-2023-32243, in versions 5.4.0 to 5.7.1 of the Elementor plugin “Essential Addons for Elementor,” […]


The post WordPress Plugin Flaw Let Attackers Hijack 1m Websites appeared first on GBHackers - Latest Cyber Security News | Hacker News.

attackers control critical cve cyber security escalation essential addons for elementor flaw hijack plugin privilege privilege escalation security vulnerability websites wordpress wordpress plugin

Visit resource

More from gbhackers.com / GBHackers On Security

PoC Released for Critical PuTTY Private Key Recovery Vulnerability 23 hours ago | gbhackers.com
attackers client concept critical +29
HackCar – Attack AND Defense Playground For Automotive System 1 day, 1 hour ago | gbhackers.com
area attack attacks automotive +31
DDoS Attack Size Increased by 233.33%, UDP-Based are Popular 1 day, 18 hours ago | gbhackers.com
attack attacks cyber-attack cyber security +14
New LLMjacking Used Stolen Cloud Credentials to Attack Cloud LLM Servers 1 day, 19 hours ago | gbhackers.com
access attack attackers cloud +25
HijackLoader Malware Attack Windows Via Weaponized PNG Image 1 day, 21 hours ago | gbhackers.com
amadey attack cyber-attack cyber security +23
North Korean Hackers Abusing Facebook & MS Management Console 1 day, 22 hours ago | gbhackers.com
abusing adversaries assets complexity +27
Google Chrome Zero-day Exploited in the Wild, Patch Now 2 days ago | gbhackers.com
actively exploited breaches browser browsers +27
Dell Hacked – Attackers Stolen 49 Million Customers Personal Information 2 days ago | gbhackers.com
addresses attackers breach customer +25
Stack Overflow Users Delete Posts in Protest Over OpenAI Partnership 2 days ago | gbhackers.com
action collaboration community cyber security +16

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Senior Associate, Cybersecurity Operations

@ Ares Management Corporation | Los Angeles, CA - CULVER CITY
View on infosec-jobs.com

Senior DevSecOps Engineer

@ Peraton | Fort Gordon, GA, United States
View on infosec-jobs.com

Senior DevSecOps Engineer

@ Diverto | Zagreb, Croatia
View on infosec-jobs.com

Lead DevSecOps Engineer

@ DTCC | Tampa, FL, United States
View on infosec-jobs.com

Incident Responder (Fraud Threat Management)

@ Scotiabank | Toronto, ON, CA, M5H1H1
View on infosec-jobs.com

Penetration Tester, Expert (Federal agency) - Tysons, VA - Full Time

@ iSoftTek Solutions | Tysons, Virginia, United States
View on infosec-jobs.com
View more jobs